Advisories MDKSA-2006:227: Updated kdegraphics packages fix EXIF vulnerability

[paul]

Stack overflow in the KFILE JPEG (kfile_jpeg) plugin in kdegraphics3,

as used by konqueror, digikam, and other KDE image browsers, allows

remote attackers to cause a denial of service (stack consumption) via a

crafted EXIF section in a JPEG file, which results in an infinite

recursion.

 

The updated packages have been patched to correct this issue.